package com.htthorizon.system.controller;

import java.io.IOException;
import java.util.*;
import java.util.concurrent.TimeUnit;
import java.util.stream.Collectors;
import javax.servlet.http.HttpServletResponse;

import cn.hutool.crypto.symmetric.SymmetricAlgorithm;
import cn.hutool.crypto.symmetric.SymmetricCrypto;
import com.htthorizon.common.core.constant.*;
import com.github.houbb.sensitive.core.api.SensitiveUtil;
import com.htthorizon.common.core.utils.ip.IpUtils;
import com.htthorizon.common.redis.service.RedisService;
import com.htthorizon.system.api.domain.SysOperLog;
import com.htthorizon.system.api.model.LoginUser2;
import com.htthorizon.system.excel.excel.UserExcel;
import com.htthorizon.system.excel.service.UserExcelService;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.lang3.ArrayUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.multipart.MultipartFile;
import com.htthorizon.common.core.domain.R;
import com.htthorizon.common.core.utils.StringUtils;
import com.htthorizon.common.core.utils.poi.ExcelUtil;
import com.htthorizon.common.core.web.controller.BaseController;
import com.htthorizon.common.core.web.domain.AjaxResult;
import com.htthorizon.common.core.web.page.TableDataInfo;
import com.htthorizon.common.log.annotation.Log;
import com.htthorizon.common.log.enums.BusinessType;
import com.htthorizon.common.security.annotation.InnerAuth;
import com.htthorizon.common.security.annotation.RequiresPermissions;
import com.htthorizon.common.security.utils.SecurityUtils;
import com.htthorizon.system.api.domain.SysDept;
import com.htthorizon.system.api.domain.SysRole;
import com.htthorizon.system.api.domain.SysUser;
import com.htthorizon.system.api.model.LoginUser;
import com.htthorizon.system.service.ISysConfigService;
import com.htthorizon.system.service.ISysDeptService;
import com.htthorizon.system.service.ISysPermissionService;
import com.htthorizon.system.service.ISysPostService;
import com.htthorizon.system.service.ISysRoleService;
import com.htthorizon.system.service.ISysUserService;

/**
 * 用户信息
 * 
 * @author mark
 */
@RestController
@RequestMapping("/user")
@Slf4j
public class SysUserController extends BaseController
{
    @Autowired
    private ISysUserService userService;

    @Autowired
    private ISysRoleService roleService;

    @Autowired
    private ISysDeptService deptService;

    @Autowired
    private ISysPostService postService;

    @Autowired
    private ISysPermissionService permissionService;

    @Autowired
    private ISysConfigService configService;

    @Autowired
    private UserExcelService userExcelService;


    @Autowired
    private RedisService redisService;

    public static void main(String[] args) {
        SymmetricCrypto aes = new SymmetricCrypto(SymmetricAlgorithm.AES, "KWCNJQWNUAOW8E19".getBytes());
    }
    @GetMapping("/password")
    @Log(title = "系统管理/二次鉴权", businessType = BusinessType.QUERY,type = Constants.SYSTEM)
    public R<String> password(@RequestParam("password") String password){
        SymmetricCrypto aes = new SymmetricCrypto(SymmetricAlgorithm.AES, "KWCNJQWNUAOW8E19".getBytes());
        String s = aes.decryptStr(password);
        if (StringUtils.isEmpty(s)){
            return R.fail("密码不能为空");
        }
        if (("\"Hndl-.2023\"".equals(s))){
            return R.ok("KWCNJQWNUAOW8E19");
        }
        SysOperLog sysLogininfor = SysOperLog.build(SecurityUtils.getUsername(), IpUtils.getIpAddr() ,"二次鉴权密码错误","POST","/user/password");
        redisService.setCacheObject("log:" + sysLogininfor.getCreateTime(), sysLogininfor);
        return  R.fail("密码错误");
    }


    /**
     * 获取用户列表
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/list")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.QUERY,type = Constants.SYSTEM)
    public TableDataInfo list(SysUser user)
    {
        startPage();
        List<SysUser> list = userService.selectUserList(user);
        int size = list.size();
        for (int i = 0; i < size; i++) {
            SysUser sysUser = list.get(i);
            SysUser sysUser1 = SensitiveUtil.desCopy(sysUser);
            list.set(i,sysUser1);
        }
        return getDataTable(list);
    }


    @GetMapping("/innerList")
    public TableDataInfo list2(SysUser user)
    {
        startPage();
        List<SysUser> list = userService.selectUserList(user);
        List<SysUser> list1=new ArrayList<>(list.size());
        TableDataInfo dataTable = getDataTable(list);
        list.stream().forEach(o->{
            SysUser sysUser = SensitiveUtil.desCopy(o);
            list1.add(sysUser);
        });
        dataTable.setRows(list1);
        return dataTable;
    }
    @GetMapping("/innerListAll")
    public TableDataInfo list3(SysUser user)
    {
        startPage();
        List<SysUser> list = userService.selectUserList2(user);
        return getDataTable(list);
    }

//    @Log(title = "用户管理", businessType = BusinessType.EXPORT)
//    @RequiresPermissions("system:user:export")
//    @PostMapping("/export")
//    public void export(HttpServletResponse response, SysUser user)
//    {
//        List<SysUser> list = userService.selectUserList(user);
//        ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
//        util.exportExcel(response, list, "用户数据");
//    }

//    @Log(title = "用户管理", businessType = BusinessType.IMPORT)
//    @RequiresPermissions("system:user:import")
//    @PostMapping("/importData")
//    public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception
//    {
//        ExcelUtil<SysUser> util = new ExcelUtil<SysUser>(SysUser.class);
//        List<SysUser> userList = util.importExcel(file.getInputStream());
//        String operName = SecurityUtils.getUsername();
//        String message = userService.importUser(userList, updateSupport, operName);
//        return success(message);
//    }
//@PostMapping("/importData")
//    public AjaxResult importData(MultipartFile file, boolean updateSupport) throws Exception
//    {
//        boolean result=  userExcelService.uploadUserExcel(file);
//        return AjaxResult.success(result);
//    }



//    @PostMapping("/importTemplate")
//    public void importTemplate(HttpServletResponse response) throws IOException
//    {
//        ExcelUtil<UserExcel> util = new ExcelUtil<UserExcel>(UserExcel.class);
//        util.importTemplateExcel(response, "用户数据");
//    }

    /**
     * 获取当前用户信息
     */
    @InnerAuth
    @GetMapping("/info/{username}")
    public R<LoginUser> info(@PathVariable("username") String username)
    {
        SysUser sysUser = userService.selectUserByUserName(username);
        if (StringUtils.isNull(sysUser))
        {
            return R.fail("用户名或密码错误");
        }
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(sysUser);
        // 权限集合
        Set<String> permissions = permissionService.getMenuPermission(sysUser);
        LoginUser sysUserVo = new LoginUser();
        sysUserVo.setSysUser(sysUser);
        sysUserVo.setRoles(roles);
        sysUserVo.setPermissions(permissions);
        return R.ok(sysUserVo);
    }

    /**
     * 注册用户信息
     */
    @InnerAuth
    @PostMapping("/register")
    public R<Boolean> register(@RequestBody SysUser sysUser)
    {
        String username = sysUser.getUserName();
        if (!("true".equals(configService.selectConfigByKey("sys.account.registerUser"))))
        {
            return R.fail("当前系统没有开启注册功能！");
        }
        if (!userService.checkUserNameUnique(sysUser))
        {
            return R.fail("保存用户'" + username + "'失败，注册账号已存在");
        }
        return R.ok(userService.registerUser(sysUser));
    }

    /**
     * 获取用户信息
     * 
     * @return 用户信息
     */
//    @GetMapping("getInfo")
//    public AjaxResult getInfo()
//    {
//        SysUser user = userService.selectUserById(SecurityUtils.getUserId());
//        log.info("user : {}" , user);
//        log.info("getInfo UserId: {}" , SecurityUtils.getUserId());
//        // 角色集合
//        Set<String> roles = permissionService.getRolePermission(user);
//        // 权限集合
//        Set<String> permissions = permissionService.getMenuPermission(user);
//        AjaxResult ajax = AjaxResult.success();
//        ajax.put("user", user);
//        ajax.put("roles", roles);
//        ajax.put("permissions", permissions);
//        LoginUser loginUser = SecurityUtils.getLoginUser();
//        loginUser.setPermissions(permissions);
//        return ajax;
//    }

    @GetMapping("getInfo")
    public AjaxResult getInfo()
    {
        SysUser user = userService.selectUserById(SecurityUtils.getUserId());
        log.info("user : {}" , user);
        log.info("getInfo UserId: {}" , SecurityUtils.getUserId());
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(user);
        // 权限集合
        Set<String> permissions = permissionService.getMenuPermission(user);
        AjaxResult ajax = AjaxResult.success();
        ajax.put("user", user);
        ajax.put("roles", roles);
        ajax.put("permissions", permissions);
        LoginUser loginUser = SecurityUtils.getLoginUser();
        loginUser.setPermissions(permissions);
        return ajax;
    }
    @GetMapping("innerGetInfo")
    public AjaxResult getInfo2()
    {
        SysUser user = userService.selectUserById(SecurityUtils.getUserId());
        // 角色集合
        Set<String> roles = permissionService.getRolePermission(user);
        // 权限集合
        Set<String> permissions = permissionService.getMenuPermission(user);
        AjaxResult ajax = AjaxResult.success();
        ajax.put("user", user);
        ajax.put("roles", roles);
        ajax.put("permissions", permissions);
        return ajax;
    }

    /**
     * 根据用户编号获取详细信息
     */
    @RequiresPermissions("system:user:query")
    @GetMapping(value = { "/", "/{userId}" })
    public AjaxResult getInfo(@PathVariable(value = "userId", required = false) Long userId)
    {
        userService.checkUserDataScope(userId);
        AjaxResult ajax = AjaxResult.success();
        List<SysRole> roles = roleService.selectRoleAll();
        ajax.put("roles", SysUser.isAdmin(userId) ? roles : roles.stream().filter(r -> !r.isAdmin()).collect(Collectors.toList()));
        ajax.put("posts", postService.selectPostAll());
        if (StringUtils.isNotNull(userId))
        {
            SysUser sysUser = userService.selectUserById(userId);
            SysUser sysUser1 = SensitiveUtil.desCopy(sysUser);
            ajax.put(AjaxResult.DATA_TAG, sysUser1);
            ajax.put("postIds", postService.selectPostListByUserId(userId));
            ajax.put("roleIds", sysUser1.getRoles().stream().map(SysRole::getRoleId).collect(Collectors.toList()));
        }
        return ajax;
    }

    /**
     * 新增用户
     */
    @RequiresPermissions("system:user:add")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.INSERT,type = Constants.SYSTEM)
    @PostMapping("/add")
    public AjaxResult add(@Validated @RequestBody SysUser user)
    {
        if (!userService.checkUserNameUnique(user))
        {
            return error("新增用户'" + user.getUserName() + "'失败,已同步");
        }
//        else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
//        {
//            return error("新增用户'" + user.getUserName() + "'失败,邮箱账号已存在");
//        }
        user.setCreateBy(SecurityUtils.getUsername());
//        user.setPassword(SecurityUtils.encryptPassword("Hndl-.2023"));
//        user.setPassword(null);
        return toAjax(userService.insertUser(user));
    }

//    @RequiresPermissions("system:user:add")
//    @Log(title = "新增用户覆盖", businessType = BusinessType.INSERT,type = Constants.SYSTEM)
//    @PostMapping("/addAlways")
//    public AjaxResult add2(@Validated @RequestBody SysUser user)
//    {
//
//        user.setCreateBy(SecurityUtils.getUsername());
////        user.setPassword(SecurityUtils.encryptPassword("Hndl-.2023"));
//        user.setPassword(null);
//        return toAjax(userService.updteByUserName(user));
//    }

    /**
     * 修改用户
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.UPDATE,type = Constants.SYSTEM)
    @PostMapping("/edit")
    public AjaxResult edit(@Validated @RequestBody SysUser user)
    {
        if (user.getRoles().size()>2){
            throw new RuntimeException("用户角色不能超过两个");
        }
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
        if (!userService.checkUserNameUnique(user))
        {
//            return error("修改用户'" + user.getUserName() + "'失败，登录账号已存在");
        }
//        else if (StringUtils.isNotEmpty(user.getEmail()) && !userService.checkEmailUnique(user))
//        {
//            return error("修改用户'" + user.getUserName() + "'失败，邮箱账号已存在");
//        }
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.updateUser(user));
    }

    /**
     * 删除用户
     */
    @RequiresPermissions("system:user:remove")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.DELETE)
    @PostMapping("/del/{userIds}")
    public AjaxResult remove(@PathVariable Long[] userIds)
    {
        if (ArrayUtils.contains(userIds, SecurityUtils.getUserId()))
        {
            return error("当前用户不能删除");
        }
        return toAjax(userService.deleteUserByIds(userIds));
    }

    /**
     * 重置密码
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.UPDATE,type = Constants.SYSTEM)
    @PostMapping("/resetPwd")
    public AjaxResult resetPwd(@RequestBody SysUser user)
    {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
//        user.setPassword(SecurityUtils.encryptPassword(user.getPassword()));
        user.setUpdateBy(SecurityUtils.getUsername());
        return toAjax(userService.resetPwd(user));
    }

    /**
     * 状态修改
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.UPDATE,type = Constants.SYSTEM)
    @PostMapping("/changeStatus")
    public AjaxResult changeStatus(@RequestBody SysUser user)
    {
        userService.checkUserAllowed(user);
        userService.checkUserDataScope(user.getUserId());
        user.setUpdateBy(SecurityUtils.getUsername());
        if ((!Objects.isNull(user.getStatus()))&&user.getStatus().equals("1")){
            Collection<String> cacheObject = redisService.keys("login_token*");
            for (String s : cacheObject) {
                LoginUser cacheObject1 = redisService.getCacheObject(s);
                System.out.println(cacheObject1);
                if (user.getUserId().equals(cacheObject1.getUserid())){
                    redisService.deleteObject(s);
                }
            }
        }

        return toAjax(userService.updateUserStatus(user));
    }

    /**
     * 根据用户编号获取授权角色
     */
    @RequiresPermissions("system:user:query")
    @GetMapping("/authRole/{userId}")
    public AjaxResult authRole(@PathVariable("userId") Long userId)
    {
        AjaxResult ajax = AjaxResult.success();
        SysUser user = userService.selectUserById(userId);
        List<SysRole> roles = roleService.selectRolesByUserId(userId);
        ajax.put("user", user);
        ajax.put("roles", SysUser.isAdmin(userId) ? roles : roles.stream().filter(r -> !r.isAdmin()).collect(Collectors.toList()));
        return ajax;
    }

    /**
     * 用户授权角色
     */
    @RequiresPermissions("system:user:edit")
    @Log(title = "系统管理/用户管理", businessType = BusinessType.GRANT,type = Constants.SYSTEM)
    @GetMapping("/authRole")
    public AjaxResult insertAuthRole(@RequestParam("userId") Long userId,@RequestParam("roleIds") Long[] roleIds)
    {
        for (Long roleId : roleIds)
        {
           if(roleId==104||roleId==106){
               return error("系统管理员，审计管理员不能分配");
           }
        }

        if (roleIds.length>2){
           throw new RuntimeException("每个用户只能有一个角色");
        }
        userService.checkUserDataScope(userId);
        userService.insertUserAuth(userId, roleIds);
        return success();
    }

    /**
     * 获取部门树列表
     */
    @RequiresPermissions("system:user:list")
    @GetMapping("/deptTree")
    public AjaxResult deptTree(SysDept dept)
    {
        return success(deptService.selectDeptTreeList(dept));
    }


    @PostMapping("/getById")
    public SysUser getUserById(@RequestParam("sysUserId") Long sysUserId){
        return userService.getById(sysUserId);
    }

    @RequestMapping(value = "/addUserByUserName",method = RequestMethod.GET)
    public R<Boolean> addUserByUserName(@RequestParam("user") String user){
     boolean result= userService.addUserByUserName(user);
     return R.ok(result);
    }

    @PostMapping("/saveUser")
    public R<SysUser> saveUser(@RequestBody SysUser sysUser){
        try{
            userService.insertUser(sysUser);
            return R.ok(sysUser);
        }catch (Exception e){
            return R.fail();
        }
    }


}
